Not here. Then again, I'm not too concerned about anyone trying to find and
DoS my laptop :)
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Monday, December 04, 2000 12:22 PM
To: Geoff Bonallack; List: Firewall
Subject: RE: ZoneAlarm *AND* a "real" firewall
Has anyone deluged their Zone Alarm with lots of attacks at once. Like a
simple Distributed Denial of Service attack
using an ordinary jolt3.c script. What type of state does it crash in??
/mark
At 11:47 AM 12/4/00 -0600, Geoff Bonallack wrote:
>As far as I know, Zone Alarm (the personal version) requires manual
>intervention from
>the user, to 'teach' it which applications are permitted access to the
>LAN, to the
>Internet or to both. From memory, it also doesn't allow you to specify
>which ports;
>any application gets carte blanche access once you give it the ok. Which
>means that
>the kewl free FTP client you downloaded can quite happily go out on any
>port it
>wants, to anywhere it wants, on the pretext of 'accessing the internet'.
>(I could be wrong on this - it was a while ago that I looked at it, and I
>don't know
>whether this has been improved since - feel free to correct me!)
>
>I have used Norton's Internet Security tool, which apart from the fact
>that it is
>bloatware actually works pretty well. When an application tries to make a
>connection
>anywhere, from any port (to any port), you get a pop-up that allows you to
>block,
>permit or create a rule. There is a good database of pre-built rules for
>different
>applications, giving common applications access to only the ports they
>require; you
>can also restrict an application to only access a given address, or range
of
>addresses.
>
>The same goes for external machines trying to make a connection to your
>machine.
>
>It is a pain in the backside the first week or so (which means it is no
>improvement
>over ZoneAlarm with regards to this), but once you get it settled in
>things run
>pretty smoothly. I have yet to check out some of the recently suggested
free
>personal firewalls, but presumably they offer similar functionality.
>
>Cheers
>Geoff
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
